Just to be
sure: Does that means that it is OK to start with OpenID
integration using OpenID4Java? Or do you prefer Netmesh? As far as I know
OpenID4Java is kind of the standard library used. On the other side
Netmesh
supports also LID (a similar protocol to OpenID created by Netmesh).
In the context of the GSOC, I think you should run with OpenID4Java.
But I'm not an expert of SSO/OpenId so it would be great to have
others comments on that, especially Sergiu.
Seems to be OK.. at least there are no complaints :-)
I updated my page (
http://dev.xwiki.org/xwiki/bin/view/Design/SingleSignOn)
and inserted mockups for the UI and for the architecture I'll use. There are
still some open questions. I don't know what makes more sense.. Should we
discuss them here or as comments on that page?
-------%<--------------------------------------------------
Open Questions
* Is the design of the new login/registration screen OK?
* Should it be possible to associate more than one OpenID URL to a user
account?
* How should it be possible for a user to bind an OpenID URL to his already
existing account?
* How should the issued OpenID URLs look like?
http://www.xwiki.org/xwiki/bin/view/XWiki/UserName seems to be to long for
me. Something like
http://www.xwiki.org/user/UserName would be much better
in my opinion. What do you think? Would that be possible with the existing
architecture?
* What about user recycling, i.e. if a user (Alice) deletes his account and
another one (Bob) creates an account with the same user name afterwards what
should happen? Bob would be able to log-in to all sites on which Alice used
her XWiki account. Yahoo for example solves this by appending a fragment
like #fk32j to each OpenID. So the OpenID URL
http://www.xwiki.org/user/UserName would become
http://www.xwiki.org/user/UserName#fragment
--------%<--------------------------------------------------
Should I elaborate something on that page? Is something missing?
Cheers,
Markus
